The Agent Skills Directory

[SAFE]: The skill is purely instructional and provides configuration templates for monitoring and observability. Analysis of the provided scripts (TypeScript, Python, YAML, Terraform) shows they are designed for metrics collection, distributed tracing, and log aggregation using well-known libraries and services. No malicious patterns such as data exfiltration, privilege escalation, or remote code execution were detected.
[CREDENTIALS_UNSAFE]: All configuration examples properly utilize placeholders (e.g., '$SLACK_API_URL', '$PAGERDUTY_SERVICE_KEY') or Terraform variables (e.g., 'var.grafana_admin_password') for sensitive information, preventing the exposure of actual credentials.
[PROMPT_INJECTION]: The skill uses the '$ARGUMENTS' placeholder to ingest user requirements in both 'SKILL.md' and 'resources/implementation-playbook.md'. While this establishes a surface for indirect prompt injection where untrusted data could influence the generated output, there is no evidence of malicious intent or bypass instructions. This is a common pattern for configuration-generation skills and is handled safely within the context of the agent's standard operations.

observability-monitoring-monitor-setup